(19) 




Europaisches Patentamt 
European Patent Office 
Office europeen des brevets 



(12) 



(ID EP1 233 414 A2 

EUROPEAN PATENT APPLICATION 



(43) Date of publication: 

21.08.2002 Bulletin 2002/34 

(21) Application number: 02003372.6 

(22) Date of filing: 13.02.2002 



(51 ) Int CI 7: G1 1 B 20/00, G 1 1 B 20/1 0 



CM 

< 

CO 
CO 
CM 



(84) Designated Contracting States: 

AT BE CH CY DE DK ES Fl FR GB GR IE IT LI LU 
MC NL PT SE TR 
Designated Extension States: 
AL LT LV MK RO SI 

(30) Priority: 15.02.2001 JP 2001039140 

(71 ) Applicant: Matsushita Electric Industrial Co., Ltd. 
Kadoma-shi, Osaka-fu 571-8501 (JP) 

(72) Inventors: 

• Murase, Kaoru, Purejierukurihara 105, 
Ikoma-gun, Nara-Ken 636-0133 (JP) 



• Motohashi, Yoshihiko, 
Osaka-shi, Osaka-fu 534-0016 (JP) 

• Miyazaki, Masaya, 
Osaka-fu 563-0022 (JP) 

• Ito, Yoshikatsu 
Osaka-fu 573-1 1 46 ( JP) 

(74) Representative: GrUnecker, Kinkeldey, 

Stockmair & Schwanhausser Anwaitssozietat 
Maxim ilia nstrasse 58 
80538 Munchen (DE) 



(54) Data nullification device for nullifying digital content recorded on a recording medium 



(57) A data nullification device for nullifying target 
data recorded on a recording medium is provided. The 
target data is made up of a plurality of data blocks. A 
judging unit (111) judges, in units of data blocks, whether 
the target data needs to be nullified. A nullifying unit nul- 
lifies, when a predetermined number of data blocks are 
judged as needing to be nullified or when one or more 
data blocks whose total amount of data reaches a pre- 
determined amount are judged as needing to be nulli- 
fied, the judged data blocks. 
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Description 

[0001] This application is based on an application No. 
2001-039140 filed in Japan, the contents of which are 
hereby incorporated by reference. 

BACKGROUND OF THE INVENTION 

Field of the Invention 

[0002] The present invention relates to a device for 
nullifying data to protect its copyright, and in particular 
relates to techniques for enhancing user convenience 
while protecting copyrighted data. 

Related Art 

[0003] The digitization of information is increasing in 
recent years. Since digitized information (hereafter re- 
ferred to as "digital content") not only is relatively easy 
to handle but also does not degrade in quality with time, 
information such as audio and video data is becoming 
more and more digitized. 

[0004] On the other hand, digital content can be cop- 
ied perfectly with no decrease in quality. This provokes 
unauthorized acts such as illegal duplication or tamper- 
ing of copyrighted information. 

[0005] To discourage such unauthorized acts s a meth- 
od may be employed that encrypts digital content, and 
provides a decryption key for decrypting the encrypted 
digital content (hereafter simply referred to as "encrypt- 
ed content") only to devices of authorized users who 
have agreed to pay a usage fee to the copyright holder. 
[0006] This prohibits the encrypted content from be- 
ing decrypted using devices other than those of the au- 
thorized users. Hence the digital content can be protect- 
ed from unauthorized use. 

[0007] Also, there is a method for indicating the cop- 
yright protection status of digital content. According to 
this method, copy control information (CCI) that shows 
whether copying of the digital content is permitted or not 
is attached to the digital content. 
[0008] In more detail, the copy control information car- 
ries one of the four instructions "Copy Never", "Copy one 
Generation", "Copy No more", and "Copy Free". 
[0009] "Copy Never" means no copies of digital con- 
tent are permitted. 

[0010] "Copy one Generation" means only a first gen- 
eration copy of digital content is permitted. The first gen- 
eration copy of the digital content is given copy control 
information "Copy No more". 

[0011] "Copy No more" is copy control information 
that is attached to digital content which is a first gener- 
ation copy of digital content whose copy control infor- 
mation is "Copy one Generation". "Copy No more" 
means copying is not permitted any more though it was 
previously. 

[001 2] "Copy Free" means digital content can be cop- 



ied freely. 

[001 3] in commercial digital broadcasting and the like, 
digital content is transmitted via a transmission line in 
the following manner. If the copy control information of 

5 the digital content is "Copy Never", "Copy one Genera- 
tion", or "Copy No more", it is definitely transmitted in an 
encrypted form, to ensure security on the transmission 
line. If the copy control information of the digital content 
is "Copy Free", it is usually transmitted in an unencrypt- 

10 ed form. 

[0014] When the user obtains digital content whose 
copy control information is "Copy Never" via a transmis- 
sion line and reproduces it, the user is prohibited from 
copying the obtained digital content to a recording me- 

15 dium. Also, when the user obtains digital content whose 
copy control information is "Copy one Generation" and 
records it onto a recording medium thereby generating 
digital content whose copy control information is "Copy 
No more", the user cannot copy the digital content re- 

20 corded on the recording medium to another recording 
medium. In such cases where copying of digital content 
is completely prohibited, the user is likely to encounter 
a lot of inconveniences. 

[0015] If copying of digital content transmitted via a 

25 transmission line is permitted, the user can perform time 
shifting, i.e., the user can record the digital content to a 
recording medium for later reproduction, or the user can 
record the digital content to a recording medium such 
as an HDD (hard disk drive) and at the same time re- 

30 produce it. However, in the case of digital content 
marked as "Copy Never", once the user breaks off view- 
ing the digital content to go to the bathroom or to answer 
the telephone or bell, he or she cannot view the missed 
part unless the digital content is rebroadcast. Many 

35 movie films run for about two hours, and some feature 
length films even run for more than four hours. Also, 
commercial digital broadcasting and the like are usually 
commercial-free. Therefore, to view an entire movie film 
or the like which is marked as "Copy Never", the user 

40 cannot answer the phone or bell and cannot even go to 
the bathroom for the running time of the movie film that 
lasts two to four hours. This causes a great deal of in- 
convenience to the user. 

[0016] Also, if copying of digital content is still permit- 
45 ted after the user acquires the digital content and 
records it to a recording medium, the user can freely 
copy or move the recorded digital content to another re- 
cording medium. However, in the case of digital content 
marked as "Copy one Generation", once the user has 
50 acquired the digital content and recorded it onto some 
recording medium, the user cannot move that digital 
content to another recording medium. Since it is con- 
venient to use a fixed recording medium such as an 
HDD that is easy to use and quick to access, the user 
55 js likely to record the acquired digital content first of all 
to such a fixed recording medium. However, fixed re- 
cording media have only limited capacities. Also, gen- 
era! fixed recording media such as HDDs are more sus- 
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ceptible to breakage than removable recording media, 
as they tend to be constantly used. For these reasons, 
if the user views the digital content and wants to store 
it long-term, it is desirable to move the digital content to 
a removable recording medium, such as a DVD-RW or 
a digital videotape, that has a larger capacity and is 
more preferable for long-term storage. 
[0017] However, it is not acceptable, in terms of cop- 
yright protection, to alter the non-copyable status of the 
copyrighted digital content so as to improve user-friend- 
liness. 

[0018] Under copyright protection, digital content 
whose copy control information is "Copy Never" can be 
viewed but cannot be copied, whilst digital content 
whose copy control information is "Copy one Genera- 
tion" can be copied only once. 

[0019] In view of this, it is desirable to allow copying 
of digital content under a specific condition but then re- 
liably nullify the digital content. In this way, user-friend- 
liness can be improved without departing from the prin- 
ciple of copy prohibition. 

SUMMARY OF THE INVENTION 

[0020] The present invention has an object of provid- 
ing a data nullification device, a data nullification meth- 
od, a data nullification program, and a computer-reada- 
ble recording medium recording a data nullification pro- 
gram which enable user-friendliness to be improved 
without departing from the principle of copy prohibition. 
[0021] The stated object can be achieved by a data 
nullification device for nullifying target data recorded on 
a recording medium, the target data being made up of 
a plurality of data blocks, the data nullification device 
including: a judging unit operable to judge, for each data 
block recorded on the recording medium, whether the 
data block needs to be nullified; and a nullifying unit op- 
erable to nullify, when a predetermined number of data 
blocks are judged as needing to be nullified or when one 
or more data blocks whose total amount of data reaches 
a predetermined amount are judged as needing to be 
nullified, the judged data blocks. 

[0022] With this construction, when a predetermined 
number of data blocks satisfy a specific condition or one 
or more data blocks whose total amount of data reaches 
a predetermined amount satisfy the specific condition, 
the data blocks are nullified. 

[0023] Accordingly, when the target data is marked as 
"Copy Never" or "Copy No more", a copy can be made 
but then the copy or the original is reliably nullified. In 
this way, user-friendliness can be improved without de- 
parting from the principle of copy prohibition. 
[0024] Also, since the target data is nullified in a pre- 
determined data unit, even if an unauthorized user tries 
to obtain the copy by powering off the device halfway 
through the operation, he or she cannot obtain the whole 
target data. By' employing an appropriate data unit for 
the nullification, security can be improved. 



[0025] Here, the recording medium may store se- 
quence information that shows a sequence in which the 
plurality of data blocks were recorded onto the recording 
medium, wherein the judging unit judges, in succession, 

5 the plurality of data blocks in the sequence shown by 
the sequence information, as needing to be nullified. 
[0026] With this construction, the plurality of data 
blocks are judged, in the recording sequence, as need- 
ing to be nullified. 

10 [0027] This allows only new data to be retained on the 
recording medium. 

[0028] Here, the target data may be data which is con- 
tinuously transmitted from an external device and re- 
corded on the recording medium, wherein the data nul- 

15 lif jcation device further includes: a receiving unit opera- 
ble to receive data from the external device, and having 
set the received data as a new data block, the nullifying 
unit writes the new data block to a recording area on the 
recording medium that stores a data block which is 

20 fudged as needing to be nullified, to nullify the recorded 
data block and at the same time record the new data 
block. 

[0029] With this construction, the new data block is 
written to the recording area of the old data block which 

25 is judged as needing to be nullified. 

[0030] In other words, recording the new data block 
has the effect of nullifying the old data block. According- 
ly, the load on the device hardly increases despite the 
execution of the nullification. 

30 [0031] Here, each data block may have a length cor- 
responding to a fixed transmission time period, wherein 
a specified number of recording areas which are each 
used as a recording area of a data block are reserved 
on the recording medium. 

35 [0032] With this construction, the specified number of 
recording areas each for recording data of the fixed 
transmission time period is reserved on the recording 
medium. 

[0033] Here, if the length corresponding to the fixed 
40 transmission time period is variable and if part of the 
recorded data block remains even after the new data 
block is written, the nullifying unit may further write ar- 
bitrary data over the part of the recorded data block. 
[0034] With this construction, arbitrary data is written 
45 over the part of the old data block which was not de- 
stroyed by the overwriting with the new data block. 
[0035] This enables the whole old data block to be de- 
stroyed. 

[0036] Here, if there is not a new data block which is 
50 to be recorded, the nullifying unit may write arbitrary da- 
ta to the recording area. 

[0037] With this construction, even when there is not 
a new data block, arbitrary data is written over each old 
data block. 

55 [0038] This enables each old data block to be de- 
stroyed. 

[0039] Here, the recording medium may store time 
limit information showing a recording time limit of each 
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data block recorded on the repording medium, the re- 
cording time limit being a time limit after which retention 
of the data block on the recording medium is prohibited, 
wherein the judging unit judges that each data block 
whose recording time limit is reached needs to be nulli- 
fied, based on the time limit information, and whenever 
any data block is judged as needing to be nullified be- 
cause a recording time limit of the data block is reached, 
the nullifying unit nullifies the data block irrespective of 
whether the predetermined number of data blocks are 
judged as needing to be nullified or whether one or more 
data blocks whose total amount of data reaches the pre- 
determined amount are judged as needing to be nulli- 
fied. 

[0040] With this construction, each data block whose 
recording time limit is reached is judged as needing to 
be nullified. 

[0041] Since each data block is nullified based on its 
recording time limit, it is possible to make such setting 
that gives a priority to each data block. This increases 
flexibility. 

[0042] Here, the data nullification device may further 
include: a utilizing unit operable to utilize the target data 
recorded on the recording medium, in units of data 
blocks, wherein the judging unitfurther judges that each 
data block which was utilized by the utilizing unit needs 
to be nullified. 

[0043] With this construction, each utilized data block 
is judged as needing to be nullified. 
[0044] This improves user-friendliness without de- 
parting from the principle of copy prohibition. 
[0045] Here, the data nullification device may further 
include: a utilizing unit operable to utilize the target data 
recorded on the recording medium, in units of data 
blocks, wherein the judging unit judges that each data 
block which was utilized by the utilizing unit needs to be 
nullified. 

[0046] With this construction, each utilized data block 

is judged as needing to be nullified. 

[0047] Since each data block which was reproduced, 

copied, or moved is nullified, user-friendliness can be 

improved without departing from the principle of copy 

prohibition. 

[0048] Here, the target data may be content data 
which is transmitted from an external device and record- 
ed on the recording medium, wherein the content data 
is accompanied with copy control information showing 
whether copying of the content data is permitted or pro- 
hibited, the utilizing unit reproduces the content data re- 
corded on the recording medium, in units of data blocks, 
and only if the copy control information accompanying 
the content data shows that the copying of the content 
data is prohibited, the judging unit judges that each data 
block which was reproduced by the utilizing unit needs 
to be nullified. 

[0049] With this construction, if the copy control infor- 
mation shows that the copying of the content data is pro- 
hibited, each reproduced data block is judged as need- 



ing to be nullified. 

[0050] in other words, when the content data is "Copy 
Never", a copy of the content data is allowed but then 
the copy is reliably nullified. 

[0051] Here, the target data may be accompanied 
with copy control information showing whether copying 
of the target data is permitted or prohibited, wherein the 
utilizing unit records the target data recorded on the re- 
cording medium, to another recording medium, in units 
of data blocks, and only if the copy control information 
accompanying the target data shows that the copying 
of the target data is prohibited, the judging unit judges 
that each data block on the recording medium which 
was recorded by the utilizing unit needs to be nullified. 
[0052] With this construction, if the copy control infor- 
mation shows that the copying of the content data is pro- 
hibited, each copied data block is judged as needing to 
be nullified. 

[0053] In other words, when the content data is "Copy 
No more", a second generation copy of the content data 
is allowed but then a first generation copy of the content 
data is reliably nullified. 

[0054] Here, the nullifying unit may destroy all parts 
of a data block which is judged as needing to be nullified. 
[0055] With this construction, all parts of the data 
block judged as needing to be nullified are destroyed. 
[0056] This enhances security. 
[0057] Here, the nullifying unit may destroy at least a 
part of a data block which is judged as needing to be 
nullified, the part of the data block being necessary to 
utilize remaining parts of the data block. 
[0058] With this construction, at least the part of the 
data block which is needed to utilize the other parts of 
the data block is destroyed. 

[0059] This makes the data block unusable while min- 
imizing the increase in the load of the device. 
[0060] Here, the target data may be MPEG data in- 
cluding I pictures, wherein the part of the data block nec- 
essary to utilize the remaining parts of the data block is 
an I picture. 

[0061] With this construction, the part of the data 
block which is needed to utilize the other parts of the 
data block is an I picture in MPEG data. 
[0062] B pictures and P pictures cannot be utilized if 
the I picture which these B pictures and P pictures refer 
to is destroyed. By destroying only the I picture while 
leaving the B and P pictures as they are, the increase 
in the load of the device is reduced. 
[0063] Here, the target data may be MPEG data in- 
cluding I pictures, wherein the part of the data block nec- 
essary to utilize the remaining parts of the data block is 
a first sector of an I picture. 

[0064] With this construction, the part of the data 
block which is needed to utilize the other parts of the 
55 data block is the first sector of the I picture. 

[0065] This makes it impossible to properly reproduce 
the I picture, so that the remaining B and P pictures can- 
not be reproduced. Thus, by destroying only the first 
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sector of the I picture, the increase in the load of the 
device can be reduced. 

[0066] Here, when the data nullification device does 
not have an enough processing capacity, the nullifying 
unit may destroy only the part of the data block neces- 
sary to utilize the remaining parts of the data block. 
[0067] With this construction, when there is not an 
enough processing capacity, only the part of the data 
block which is needed to utilize the other parts is de- 
stroyed. 

[0068] This enhances security without increasing the 
load of the device. 

[0069] Here, the nullifying unit may destroy the re- 
maining parts of the data block within a range where a 
processing capacity of the data nullification device al- 
lows. 

[0070] With this construction, the other parts of the da- 
ta block are destroyed within a range where the process- 
ing capacity of the device allows. 
[0071] This enhances security without increasing the 
load of the device. 

[0072] Here, the data nullification device may further 
include: a destroying unit operable to destroy remaining 
parts of data blocks which were not destroyed by the 
nullifying unit, when the data nullification device has an 
enough processing capacity. 

[0073] With this construction, when there is an 
enough processing capacity, remaining parts of data 
blocks which were not destroyed by the nullifying unit 
are all destroyed. 

[0074] This enhances security without increasing the 
load of the device. 

[0075] . Here, each data block recorded on the record- 
ing medium may be encrypted using an individual en- 
cryption key, wherein a decryption key for decrypting the 
encrypted data block is stored on the recording medium, 
and the nullifying unit destroys at least a decryption key 
corresponding to a data block which is judged as need- 
ing to be nullified. 

[0076] With this construction, at least the decryption 
key corresponding to the data block is destroyed. As a 
result, the data block remaining on the recording medi- 
um becomes unusable, since the data block cannot be 
decrypted without the decryption key. 
[0077] Thus, the data block is made unusable with a 
minimum increase in the load of the device. 
[0078] Here, the data nullification device may further 
include: an acquiring unit operable to acquire the target 
data in an encoded form; a decoding unit operable to 
decode the encoded target data using a user key which 
has been provided to authorized users in advance, to 
obtain the target data; a key generating unit operable to 
generate an arbitrary encryption key and a decryption 
key corresponding to the encryption key, for each data 
block of the target data; a data encrypting unit operable 
to encrypt the data block using the encryption key so 
that the encrypted data block can be decrypted using 
the corresponding decryption key; a key encrypting unit 



operable to encrypt the decryption key using an identi- 
fier unique to the data nullification device; and a record- 
ing unit operable to record the encrypted data block and 
the encrypted decryption key onto the recording medi- 
s um. 

[0079] With this construction, the encoded target data 
is decoded using the user key and each data block of 
the decoded target data is encrypted using an encryp- 
tion key. Further, a decryption key corresponding to the 
to encryption key is encrypted using an identifier unique to 
the device, and the encrypted data block and the en- 
crypted decryption key are recorded onto the recording 
medium. 

[0080] Since the encrypted decryption key cannot be 
15 decrypted without the identifier unique to the device and 
so cannot be used by other devices, security can be en- 
hanced. 

[0081] Here, at least the decoding unit, the key gen- 
erating unit, the data encrypting unit, and the key en- 
20 crypting unit may be contained in a single semiconduc- 
tor chip. 

[0082] With this construction, the decoding unit, the 
key generating unit, the data encrypting unit, and the 
key encrypting unit can be contained in the same sem- 
25 iconductor chip. This keeps the target data in an unen- 
crypted form from being transferred over wiring of a cir- 
cuit board. 

[0083] In other words, an unauthorized user cannot 
retrieve the unencrypted target data during the opera- 

30 tion. This enhances security. 

[0084] The stated object can also be achieved by a 
data nullification program for nullifying target data re- 
corded on a recording medium, the target data being 
made up of a plurality of data blocks : the data nullifica- 

35 tion program having a computer execute the steps of: 
judging, for each data block recorded on the recording 
medium, whether the data block needs to be nullified; 
and nullifying, when a predetermined number of data 
blocks are judged as needing to be nullified or when one 

40 or more data blocks whose total amount of data reaches 
a predetermined amount are judged as needing to be 
nullified, the judged data blocks. 

[0085] With this construction, when a predetermined 
number of data blocks satisfy a specific condition or one 
45 or more data blocks whose total amount of data reaches 
a predetermined amount satisfy the specific condition, 
the data blocks are nullified. 

[0086] Accordingly, when the target data is marked as 
"Copy Never" or "Copy No more", a copy can be made 

50 but then the copy or the original is reliably nullified. In 
this way, user-friendliness can be improved without de- 
parting from the principle of copy prohibition. 
[0087] Also, since the target data is nullified in a pre- 
determined data unit, even if an unauthorized user tries 

55 to obtain the copy by powering off the device halfway 
through the operation, he or she cannot obtain the whole 
target data. By employing an appropriate data unit for 
the nullification, security can be improved. 
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[0088] Here, the recording medium may store se- 
quence information that shows a sequence in which the 
pluraiity of data blocks were recorded onto the recording 
medium, wherein the judging step judges, in succes- 
sion; the plurality of data blocks in the sequence shown 
by the sequence information, as needing to be nullified. 
[0089] With this construction, the plurality of data 
blocks are judged, in the recording sequence, as need- 
ing to be nullified. 

[0090] This allows only new data to be retained on the 
recording medium. 

[0091 ] Here, the target data may be data which is con- 
tinuously transmitted from an external device and re- 
corded on the recording medium, wherein the data nul- 
lification program further having the computer execute 
the step of: receiving data from the external device, and 
having set the received data as a new data block, the 
nullifying step writes the new data block to a recording 
area on the recording medium that stores a data block 
which is judged as needing to be nullified, to nullify the 
recorded data block and at the same time record the 
new data block. 

[0092] With this construction, the new data block is 
written to the recording area of the old data block which 
is judged as needing to be nullified. 
[0093] In other words, recording the new data block 
has the effect of nullifying the old data block. According- 
ly, the load on the device hardly increases despite the 
execution of the nullification. 

[0094] Here, the recording medium may store time 
limit information showing a recording time limit of each 
data block recorded on the recording medium, the re- 
cording time limit being a time limit after which retention 
of the data block on the recording medium is prohibited, 
wherein the judging step judges that each data block 
whose recording time limit is reached needs to be nulli- 
fied, based on the time limit information, and whenever 
any data block is judged as needing to be nullified be- 
cause a recording time limit of the data block is reached, 
the nullifying step nullifies the data block irrespective of 
whether the predetermined number of data blocks are 
judged as needing to be nullified or whether one or more 
data blocks whose total amount of data reaches the pre- 
determined amount are judged as needing to be nulli- 
fied. 

[0095] With this construction, each data block whose 
recording time limit is reached is judged as needing to 
be nullified. 

[0096] Since each data block is nullified based on its 
recording time limit, it is possible to make such setting 
that gives a priority to each data block. This increases 
flexibility. 

[0097] Here, the data nullification program may fur- 
ther have the computer execute the step of: utilizing the 
target data recorded on the recording medium, in units 
of data blocks, wherein the judging step further judges 
that each data block which was utilized in the utilizing 
step needs to be nullified. 



[0098] With this construction, each utilized data block 
is judged as needing to be nullified. 
[0099] This improves user-friendliness without de- 
parting from the principle of copy prohibition. 

5 [0100] Here, the data nullification program may fur- 
ther have the computer execute the step of: utilizing the 
target data recorded on the recording medium, in units 
of data blocks, wherein the judging step judges that 
each data block which was utilized in the utilizing step 

10 needs to be nullified. 

[0101] With this construction, each utilized data block 
is judged as needing to be nullified: 
[0102] Since each data block which was reproduced, 
copied, or moved is nullified, user-friendliness can be 

15 improved without departing from the principle of copy 
prohibition. 

[0103] Here, the nullifying step may destroy ail parts 
of a data block which is judged as needing to be nullified. 
[0104] With this construction, all parts of the data 

so block judged as needing to be nullified are destroyed. 
[0105] This enhances security. 
[0106] Here, the nullifying step may destroy at least a 
part of a data block which is judged as needing to be 
nullified, the part of the data block being necessary to 

25 utilize remaining parts of the data block. 

[0107] With this construction, at least the part of the 
data block which is needed to utilize the other parts of 
the data block is destroyed. 

[0108] This makes the data block unusable while min- 
30 imizing the increase in the load of the device. 

[0109] Here, each data block recorded on the record- 
ing medium may be encrypted using an individual en- 
cryption key, wherein a decryption key for decrypting the 
encrypted data block Is stored on the recording medium, 
35 and the nullifying step destroys at least a decryption key 
corresponding to a data block which is judged as need- 
ing to be nullified. 

[0110] With this construction, at least the decryption 
key corresponding to the data block is destroyed. As a 

40 result, the data block remaining on the recording medi- 
um becomes unusable, since the data block cannot be 
decrypted without the decryption key. 
[0111] Thus, the data block is made unusable with a 
minimum increase in the load of the device. 

45 [0112] The stated object can also be achieved by a 
data nullification method for nullifying target data record- 
ed on a recording medium, the target data being made 
up of a plurality of data blocks, the data nullification 
method including the steps of: judging, for each data 

50 block recorded on the recording medium, whether the 
data block needs to be nullified; and nullifying, when a 
predetermined number of data blocks are judged as 
needing to be nullified or when one or more data blocks 
whose total amount of data reaches a predetermined 

55 amount are judged as needing to be nullified, the judged 
data blocks. 

[0113] With this construction, when a predetermined 
number of data blocks satisfy a specific condition or one 
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or more data blocks whose total amount of data reaches 
a predetermined amount satisfy the specific condition, 
the data blocks are nullified. 

[01 1 4] Accordingly, when the target data is marked as 
"Copy Never" or "Copy No more", a copy can be made 
but then the copy or the original is reliably nullified. In 
this way, user-friendliness can be improved without de- 
parting from the principle of copy prohibition. 
[0115] Also, since the target data is nullified in a pre- 
determined data unit, even if an unauthorized user tries 
to obtain the copy by powering off the device halfway 
through the operation, he orshe cannot obtain the whole 
target data. By employing an appropriate data unit for 
the nullification, security can be improved. 
[0116] Here, the recording medium may store se- 
quence information that shows a sequence in which the 
plurality of data blocks were recorded onto the recording 
medium, wherein the judging step judges, in succes- 
sion, the plurality of data blocks in the sequence shown 
by the sequence information, as needing to be nullified. 
[0117] With this construction, the plurality of data 
blocks are judged, in the recording sequence, as need- 
ing to be nullified. 

[01 1 8] This allows only new data to be retained on the 
recording medium. 

[0119] Here, the target data may be data wh ich is con- 
tin uously ^transmitted from an external device and re- 
corded on the recording medium, wherein the data nul- 
lification method further including the step of: receiving 
data from the external device, and wherein having set 
the received data as a new data block, the nullifying step 
writes the new data block to a recording area on the re- 
cording medium that stores a data block which is judged 
as needing to be nullified, to nullify the recorded data 
block and at the same time record the new data block. 
[0120] With this construction, the new data block is 
written to the recording area of the old data block which 
is judged as needing to be nullified. 
[0121] In other words, recording the new data block 
has the effect of nullifying the old data block. According- 
ly, the load on the device hardly increases despite the 
execution of the nullification. 

[0122] Here, the recording medium may store time 
limit information showing a recording time limit of each 
data block recorded on the recording medium, the re- 
cording time limit being a time limit after which retention 
of the data block on the recording medium is prohibited, 
wherein the judging step judges that each data block 
whose recording time limit is reached needs to be nulli- 
fied, based on the time limit information, and whenever 
any data block is judged as needing to be nullified be- 
cause a recording time limit of the data block is reached, 
the nullifying step nullifies the data block irrespective of 
whether the predetermined number of data blocks are 
judged as needing to be nullified orwhetheroneormore 
data blocks whose total amount of data reaches the pre- 
determined amount are judged as needing to be nulli- 
fied. 



[0123] With this construction, each data block whose 
recording time limit is reached is judged as needing to 
be nullified. 

[0124] Since each data block is nullified based on its 
s recording time limit, it is possible to make such setting 
that gives a priority to each data block. This increases 
flexibility. 

[0125] Here, the data nullification method may further 
include the step of: utilizing the target data recorded on 
the recording medium, in units of data blocks, wherein 
the judging step further judges that each data block 
which was utilized in the utilizing step needs to be nul- 
lified. 

[0126] With this construction, each utilized data block 
is judged as needing to be nullified. 
[0127] This improves user-friendliness without de- 
parting from the principle of copy prohibition. 
[0128] Here, the data nullification method may further 
include the step of: utilizing the target data recorded on 
the recording medium, in units of data blocks, wherein 
the judging step judges that each data block which was 
utilized in the utilizing step needs to be nullified. 
[0129] With this construction, each utilized data block 
is judged as needing to be nullified. 
[0130] Since each data block which was reproduced, 
copied, or moved is nullified, user-friendliness can be 
improved without departing from the principle of copy 
prohibition. 

[0131] Here, the nullifying step may destroy all parts 
of a data block which is judged as needing to be nullified. 
[0132] With this construction, ail parts of the data 
block judged as needing to be nullified are destroyed. 
[0133] This enhances security. 
[01 34] Here, the nullifying step may destroy at least a 
part of a data block which is judged as needing to be 
nullified, the part of the data block being necessary to 
utilize remaining parts of the data block. 
[0135] With this construction, at least the part of the 
data block which is needed to utilize the other parts of 
the data block is destroyed. 

[0136] This makes the data block unusable while min- 
imizing the increase in the load of the device. 
[0137] Here, each data block recorded on the record- 
ing medium may be encrypted using an individual en- 
cryption key, wherein a decryption key for decrypting the 
encrypted data block is stored on the recording medium, 
and the nullifying step destroys at least a decryption key 
corresponding to a data block which is judged as need- 
ing to be nullified. 

[0138] With this construction, at least the decryption 
key corresponding to the data block is destroyed. As a 
result, the data block remaining on the recording medi- 
um becomes unusable, since the data block cannot be 
decrypted without the decryption key. 
[0139] Thus, the data block is made unusable with a 
minimum increase in the load of the device. 
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BRIEF DESCRIPTION OF THE DRAWINGS 

[0140] These and other objects, advantages and fea- 
tures of the invention will become apparent from the fol- 
lowing description thereof taken in conjunction with the 
accompanying drawings which illustrate specific em- 
bodiments of the invention. 
[0141] In the drawings: 

FIG. 1 shows an example hardware construction of 
a reception/reproduction/nullification system to 
which the first embodiment of the invention relates; 
FIG. 2 is a functional block diagram of a reception/ 
reproduction/nullification device of the first embod- 
iment; 

FIG. 3 shows an example operation of the recep- 
tion/reproduction/n unification device of the first em- 
bodiment; 

FIG. 4 shows another example operation of the re- 
ception/reproduction/nullification device of the first 
embodiment; 

FIG. 5 is a functional block diagram of a reception/ 
reproduction/nullification device of the second em- 
bodiment of the invention; 

FIG. 6 shows an example operation of the recep- 
tion/reproduction/nullification device of the second 
embodiment; 

FIG. 7 is a functional block diagram of a reception/ 
reproduction/nullification device of the third embod- 
iment of the invention; and 

FIG. 8 shows an example operation of the recep- 
tion/reproduction/nullification device of the third 
embodiment. 

DESCRIPTION OF THE PREFERRED 
EMBODIMENTS 

First Embodiment 

(Overview) 

[0142] The first embodiment of the present invention 
is the following device. When digital content which is 
copy-prohibited ("Copy Never") is received, the device 
allows the digital content to be recorded onto a recording 
medium, but nullifies the recorded digital content once 
the recorded digital content has been reproduced or a 
predetermined time period has passed from the time at 
which the digital content was recorded. This enables 
time shifting to be performed only for one reproduction 
or only within the predetermined time period after the 
reception. 

(Construction) 

[0143] FIG. 1 shows an example hardware construc- 
tion of a reception/reproduction/nullification system to 
which the first embodiment of the present invention re- 



lates. 

[0144] In addition to a system LSI 800, the drawing 
shows an antenna 901 , a reception device 902, a mon- 
itor 903, a RAM 904, an HDD 905, a DVD recorder 906, 
s and a ROM 907 for purposes of illustration . The system 
LSI 800, the RAM 904, the HDD 905, and the ROM 907 
are generally contained in the same case called an STB 
(set-top box) . 

[0145] The system LSI 800 includes a transport 
10 stream decoder 801 , an AV decoder 802, an encryption 
engine 803, and a microcomputer 804. These construc- 
tion elements are enclosed within the same semicon- 
ductor chip, to prevent unencrypted digital data which is 
obtained by decoding a transport stream from being 
15 transferred over wiring of a circuit board. This strength- 
ens security. 

[0146] The reception device 902 receives a desired 
carrier wave from a broadcast station via the antenna 
901 and demodulates it, to produce a transport stream 

20 (hereafter a "TS stream") made up of packets storing 
desired digital content and control data for the digital 
content. If the desired digital content requires copyright 
protection, information that indicates prohibition of cop- 
ies is attached to the digital content. As one example, 

25 copy control information "Copy Never" is attached to the 
digital content. The TS stream has a header unit and a 
payload unit The header unit includes control informa- 
tion and the like and is unencrypted, whereas the pay- 
load unit includes data that need be delivered to its des- 

30 tination and is encrypted using a cipher called scram- 
bling. 

[0147] The transport stream decoder 801 descram- 
bles the scrambled part of the generated TS stream us- 
ing a descramble key which has been given to author- 

35 jzed users beforehand, and decodes the result. The 
transport stream decoder 801 also decodes the un- 
scrambled part of the TS stream. Hence the transport 
stream decoder 801 obtains the desired digital content. 
As one example, the digital content obtained here is an 

40 MPEG stream of audio and video. 

[0148] The AV decoder 802 generates a video output 
signal and an audio output signal from the digital content 
obtained by the transport stream decoder 801 , and has 
the monitor 903 reproduce the video and audio. 

45 [0149] The encryption engine 803 operates as fol- 
lows. If the digital content requires copyright protection 
and yet need be recorded to a recording medium such 
as the RAM 904, the HDD 905, orthe DVD recorder 906, 
the encryption engine 803 encrypts the digital content 

so obtained by the transport stream decoder 801 . Here, the 
digital content is handled in units of data blocks which 
each correspond to a predetermined broadcast time pe- 
riod expressed, for example, in minutes. The encryption 
engine 803 encrypts each data block using a randomly- 

55 generated encryption key. The encryption engine 803 
also encrypts a decryption key corresponding to the en- 
cryption key using a device ID, and records the encrypt- 
ed data block and the encrypted decryption key as a 
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pair. To use the digital content, the encryption engine 

803 decrypts the encrypted decryption key using the de- 
vice ID, and decrypts the encrypted data block using the 
obtained decryption key. The device ID is a value which 
is unique to the semiconductor chip. In the present ex- 
ample, the device ID cannot be referred to from outside 
the semiconductor chip. 

[0150] The microcomputer 804 controls the overall 
operation of the STB, by reading a control program 
stored on the ROM 907 and executing it. Here, the con- 
trol program has been scrambled to prevent unauthor- 
ized users from altering it, so that the microcomputer 

804 descrambles the control program before executing 
it. 

[0151] Suppose the user who is viewing copy-prohib- 
ited digital content indicates time shifting for some rea- 
son. Then the microcomputer 804 exercises control so 
that the following three operations are simultaneously 
carried out repeatedly: (1 ) recording an encrypted data 
block to the HDD 905; (2) decrypting an encrypted data 
block which was recorded onto the HDD 905 a shift time 
earlier, and- reproducing the decrypted data block; and 
(3) nullifying an encrypted data block on the HDD 905 
which has just been reproduced so that the data block 
can no longer be reproduced. 

[01 52] Here, the encrypted data block is nullified once 
it has been reproduced, but this condition for nullification 
may be replaced by or used in combination with the con- 
dition of whether a predetermined time period has 
passed since the time at which the data block was re- 
corded. Most movie films run about two hours. Accord- 
ingly, if the predetermined time period is set at around 
90 minutes, it is highly possible to keep a whole movie 
film from .being stored on a recording medium even in 
one second. As a result, even if the power is turned off 
halfway through the processing, the user cannot obtain 
the whole movie film in its entirety, and so cannot repro- 
duce the whole movie film later. Hence time shifting can 
be performed only within the predetermined time period. 
[01 53] FIG. 2 is a functional block diagram of a recep- 
tion/reproduction/nullification device of the first embod- 
iment. 

[0154] The reception/reproduction/nullification de- 
vice 100 shown in the drawing includes a user interface 
unit 1 01 , a receiving unit 102, a descrambling unit 103, 
a key generating unit 104, a data encrypting unit 105, a 
key encrypting unit 106, a recording unit 107, a key de- 
crypting unit 108, a data decrypting unit 109, a repro- 
ducing unit 110, a nullification judging unit 111, a 
processing capacity judging unit 112, a sequential nul- 
lifying unit 113, andatotal nullifying unit 114. In actuality, 
the function of the receiving unit 1 02 corresponds to the 
function of the reception device 902 shown in FIG. 1 . 
The function of the descrambling unit 103 corresponds 
to the function of the transport stream decoder 801 in 
FIG. 1 . The functions of the key generating unit 1 04, da- 
ta encrypting unit 105, key encrypting unit 106, record- 
ing unit 1 07, key decrypting unit 108, and data decrypt- 



ing unit 1 09 correspond to the function of the encryption 
engine 803 in FIG. 1. The function of the reproducing 
unit 110 corresponds to the function of the AV decoder 
802 in FIG. 1. The functions of the nullification judging 
5 unit 111, processing capacity judging unit 112, sequen- 
tial nullifying unit 113, and total nullifying unit 114 corre- 
spond to the function of the microcomputer 804 in FIG. 
1. 

[0155] It should be noted here that an explanation on 
functions which are not directly related to the present 
invention has been omitted in this specification for sim- 
plicity's sake, so that the following description may differ 
with the actual practice to some extent. 
[0156] The user interface unit 101 receives various in- 
dications from the user. The indications include a view 
indication, a pause indication, a time shift indication, a 
stop indication, and an indication to move digital con- 
tent. 

[0157] The receiving unit 102 receives transmission 
data broadcast from a broadcast station or the like, in 
the present example, the receiving unit 102 receives 
digital content which has been scrambled and is accom- 
panied with copy control information. 
[0158] The descrambling unit 103 descrambles the 
scrambled digital content received by the receiving unit 
102, using a descramble key which has been given to 
authorized users beforehand. 

[0159] The key generating unit 104 operates as fol- 
lows. While the user is indicating a pause, the key gen- 
erating unit 104 arbitrarily generates a unique encryp- 
tion key and a decryption key corresponding to the en- 
cryption key using a random number or the like, for each 
data block corresponding to the predetermined broad- 
cast time period which is descrambled by the descram- 
bling unit 103. Here, an algorithm that uses the same 
key for encryption and decryption is employed, so that 
an encryption key and a decryption key corresponding 
to the encryption key can be collectively referred to as 
a "unique key". For example, a unique key is randomly 
generated for each data block that corresponds to the 
broadcast time period of 1 0 minutes. 
[0160] The data encrypting unit 105 operates as fol- 
lows. While.the user is indicating a pause, the data en- 
crypting unit 1 05 encrypts each data block descrambled 
by the descrambling unit 1 03 using an encryption key 
generated by the key generating unit 104 for the data 
block, so that the encrypted data block can be decrypted 
using a decryption key corresponding to the encryption 
key. In the present example, each data block corre- 
sponding to the broadcast time period of 10 minutes is 
encrypted using a corresponding unique key. 
[0161] The key encrypting unit 106 encrypts the de- 
cryption key corresponding to the encryption key used 
by the data encrypting unit 1 05, using the device ID. In 
the present example, the unique key is encrypted using 
the device ID. 

[0162] The recording unit 1 07 records the data block 
encrypted by the data encrypting unit 105 and the de- 
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cryption key encrypted by the key encrypting unit 106, 
to a predetermined recording medium as a pair. In the 
present example, the pair of encrypted data block cor- 
responding to the broadcast time period of 10 minutes 
and encrypted unique key is recorded to the HDD 905. 
Here, if the digital content does not require copyright 
protection, the data block may be recorded in an unen- 
crypted form. 

[0163] The key decrypting unit 108 operates as fol- 
lows. While the user is indicating time shifting, the key 
decrypting unit 108 reads an encrypted decryption key 
corresponding to each encrypted data block which is to 
be reproduced, from the recording medium. The key de- 
crypting unit 1 08 then decrypts the encrypted decryption 
key using the device ID. In the present example, an en- 
crypted unique key that is paired with each encrypted 
data block which was recorded a shift time earlier (here- 
after a "shift-time-old data block") is decrypted using the 
device ID. 

[0164] The data decrypting unit 109 operates as fol- 
lows. While the user is indicating time shifting, the data 
decrypting unit 109 decrypts each encrypted data block 
to be reproduced, using a corresponding decryption key 
decrypted by the key decrypting unit 108. In the present 
example, each shift-time-old data block is decrypted us- 
ing a corresponding unique key. 
[0165] The reproducing unit 110 operates as follows. 
While the user is indicating viewing, the reproducing unit 
110 reproduces each data block descrambied by the de- 
scrambling unit 1 03. While the user is indicating time 
shifting, the reproducing unit 110 reproduces each data 
block decrypted by the data decrypting unit 109. 
[0166] The nullification judging unit 111 operates as 
follows. When digital content is received and recorded 
despite its copy prohibition status, the nullification judg- 
ingunit112 judges, for each pair of encrypted data block 
and encrypted decryption key recorded on the recording 
medium, whether the pair should be nullified, based on 
a specific condition. In the present example, the nullifi- 
cation judging unit 111 Judges, for each pair of encrypted 
data block corresponding to the broadcast time period 
of 10 minutes and encrypted unique key which are re- 
corded on the HDD 905, whetherthe pairshould be nul- 
lified. 

[0167] The specific condition here is whetherthe data 
block has been reproduced by the reproducing unit 110, 
or whether a predetermined time period has passed 
from the time at which the data block was received by 
the receiving unit 102 or recorded by the recording unit 
1 07. In the case where the lapse of the predetermined 
time period is used as the condition for nullification, the 
recording unit 107 records time limit information to the 
recording medium together with each pair of encrypted 
data block and encrypted decryption key. The time limit 
information shows the reception time or recording time 
of the data block, and is used to manage the recording 
time limit of the data block. The nullification judging unit 
111 judges whether the recording time limit is reached, 



according to this time limit information. 
[0168] The processing capacity judging unit 1 1 2 judg- 
es whetherthe device 100 has an enough processing 
capacity to destroy all parts of the pair of encrypted data 
5 block and encrypted decryption key which Is judged as 
needing to be nullified. 

[0169] The sequential nullifying unit 113 operates as 
follows. When the nullification judging unit 111 judges 
that a predetermined number of encrypted data blocks 

10 and their corresponding encrypted decryption keys 
should be nullified or that one or more encrypted data 
blocks whose total amount of data reaches a predeter- 
mined amount and their corresponding encrypted de- 
cryption keys should be nullified, the sequential nullify- 

15 ing unit 11 3 nullifies the judged pairs of encrypted data 
blocks and encrypted decryption keys. Here, the prede- 
termined number is an integer no less than 1 . 
[0170] To nullify a pair of encrypted data block and 
encrypted decryption key by the sequential nullifying 

20 unit 113 means to make the pair on the recording medi- 
um unusable. Ordinary data deletion merely deletes link 
information of a data file or rewrites several bits of the 
header unit of the data file, so that the data unit of the 
data file remains as it is. This being so, the data can be 

25 recovered in some cases even after it is supposed to be 
deleted. Such data deletion cannot be regarded as mak- 
ing the data unusable. On the other hand, the nullifica- 
tion performed by the sequential nullifying unit 113 de- 
stroys the pair of encrypted data block and encrypted 

30 decryption key itself, by writing arbitrary data to a re- 
cording area of the pair or by initializing the recording 
area. 

[0171] Here, the sequential nullifying unit 113 may de- 
stroy both the encrypted data block and the encrypted 
35 decryption key. In reality, however, writing arbitrary data 
of the same size over each pairwhich is judged as need- 
ing to be nullified may cause a problem to the processing 
capacity of the device 1 00. 

[0172] For instance, in time shifting it is necessary to 

40 simultaneously perform the following two sequence of 
operations. The first sequence of operations is receiv- 
ing, descrambling, encrypting, and recording broadcast 
digital content. The second sequence of operations is 
reading, decrypting, and reproducing recorded digital 

45 content. This puts a heavy load on the control system, 
the recording medium, and the like. This being so, to 
further execute an operation of writing arbitrary data of 
the same size over each pairwhich needs to be nullified, 
it is necessary to increase the processing capacity of 

50 the device 1 00 or to restrict other functions. 

[0173] However, the act of nullifying data itself does 
not contribute user convenience at all. For this reason, 
it is undesirable to increase the processing capacity 
which would cause an increase in cost, or to limit other 

55 functions. 

[0174] Accordingly, the sequential nullifying unit 113 
may destroy at least an important part of the pair of en- 
crypted data block and encrypted decryption key. The 
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important part referred to here is data that is necessary 
to reproduce the other parts of the pair. In more detail, 
the important part is the decryption key. in the case of 
MPEG data, the important part is an i picture or the first 
sector of such an I picture. 5 
[0175] As an alternative, the sequential nullifying unit 
113 may destroy aii parts of the pair when the process- 
ing capacity judging unit 112 judges that there is an 
enough processing capacity, and destroy only the im- 
portant part of the pair when the processing capacity 10 
judging unit 112 judges that there is not an enough 
processing capacity. 

[0176] The total nullifying unit 1 1 4 destroys all remain- 
ing parts of the pairs of encrypted data blocks and en- 
crypted decryption keys which have not been destroyed 15 
by the sequential nullifying unit 113, when there is an 
enough processing capacity. Also, when the user indi- 
cates to stop time shifting, the total nullifying unit 114 
destroys all remaining parts which have not been de- 
stroyed. 20 

(First Operation Example) 

[0177] FIG. 3 shows an example operation of the re- 
ception/reproduction/nullification device 1 00 of the first 25 
embodiment. 

[0178] .Sequential reproduction, recording, time shift- 
ing, and nullifying of the present invention are explained 
with reference to FIG. 3. 

30 

(1 ) In the stopped state, the user interface unit 1 01 
waits for receiving the user's indication to view 
some program (S1 ). 

(2) Upon receiving the view indication (S1 :Yes), the 
sequential reproduction starts (S2). 35 

The receiving unit 102 starts receiving trans- 
mission data of the program which the user wants 
to view. In the present example, scrambled digital 
content with copy control information "Copy Never" 
is received. 40 

The descrambling unit 103 starts descrambling 
the scrambled digital content received by the re- 
ceiving unit 102. 

The reproducing unit 1 1 0 starts reproducing the 
digital content descrambled by the descrambling 45 
unit 1 03. 

(3) During the sequential reproduction, the user in- 
terface unit 1 01 waits forthe user's indication to stop 
(S3). 

(4) Upon receiving the stop indication (S3:Yes), the so 
operations of the receiving unit 102, descrambling 
unit 103, and reproducing unit 110 are stopped to 
end the sequential reproduction and return to the 
stopped state (S4). 

(5) During the sequential reproduction, the user in- 55 
terrace unit 101 waits for the user's indication to 
pause (S5). 

(6) Upon receiving the pause indication (S5:Yes), 



the recording starts (S6). 

The key generating unit 104 randomly gener- 
ates an encryption key and a decryption key corre- 
sponding to the encryption key using a random 
number or the like, for each data block correspond- 
ing to the predetermined broadcast time period 
which is descrambled by the descrambling unit 1 03 . 
In the present example, a unique key is randomly 
generated for each data block corresponding to the 
broadcast time period of 10 minutes . 

The data encrypting unit 1 05 encrypts the data 
block descrambled by the descrambling unit 103 
using the encryption key generated by the key gen- 
erating unit 104, so that the encrypted data block 
can be decrypted using the corresponding decryp- 
tion key. In the present example, the data block cor- 
responding to the broadcast time period of 1 0 min- 
utes is encrypted using the unique key. 

The key encrypting unit 106 encrypts the de- 
cryption key corresponding to the encryption key 
used by the data encrypting unit 1 05, using the de- 
vice ID. In the present example, the unique key is 
encrypted using the device ID. 

The recording unit 107 records the data block 
encrypted by the data encrypting unit 105 and the 
decryption key encrypted by the key encrypting unit 
1 06, to the recording medium. In the present exam- 
pie, the pair of encrypted data block corresponding 
to the broadcast time period of 10 minutes and en- 
crypted unique key is recorded to the HDD 905. 

The reproducing unit 110 stops the sequential 
reproduction of the digital content. 

(7) During the recording, the nullification judging 
unit 111 judges, for each pair of encrypted data 
block and encrypted decryption key recorded on the 
recording medium, whether the recording time limit 
of the pair is reached. In the present example, the 
recording time limit is set at 90 minutes, so that once 
90 minutes have passed since a pair of encrypted 
data block corresponding to the broadcast time pe- 
riod of 10 minutes and encrypted unique key was 
recorded onto the HDD 905, the nullification judging 
unit 111 judges that the recording time limit of the 
pair is reached (S7). 

(8) When the recording time limit of the pair is 
reached, the sequential nullifying unit 113 writes ar- 
bitrary data to a recording area of the encrypted de- 
cryption key to nullify the pair. Here : if the process- 
ing capacity judging unit 1 1 2 judges that there is an 
enough processing capacity, the sequential nullify- 
ing unit 1 1 3 further writes arbitrary data to a record- 
ing area of the encrypted data block (S8). 

(9) During the recording, the user interface unit 101 
waits for the user's indication to stop (S9). 

(10) Upon receiving the stop indication (S9:Yes), 
the operations of the receiving unit 102, descram- 
bling unit 103, key generating unit 104, data en- 
crypting unit 105 : key encrypting unit 106, and re- 
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cording unit 107 are stopped to end the recording. 
Also, thetotal nullifying unit 1 14 destroys all remain- 
ing data which has not been destroyed by the se- 
quential nullifying unit 113, before returning to the 
stopped state (S 1 0). 5 

(11) During the recording, the user interface unit 
101 waits for the user's indication to perform time 
shifting (S11). 

(12) Upon receiving the time shift indication (S11: 
Yes), the time shifting starts (S12>. 10 

The key decrypting unit 1 08 reads an encrypted 
decryption key paired with each shift-time-old data 
block from the recording medium, and decrypts the 
encrypted decryption key using the device ID. In the 
present example, the shift time is 30 minutes, so 15 
that an encrypted unique key which is paired with 
each encrypted data block that was recorded 30 to 
20 minutes earlier is decrypted. If the shift time is 
longer than the recording time limit, time shifting 
cannot be performed, as the shift-time-old data 20 
block has already been nullified by the time the time 
shifting starts. In such a case, the shift time is set 
as the recording time limit to continue the operation . 

The data decrypting unit 1 09 decrypts the en- 
crypted data block using the decryption key de- 25 
crypted by the key decrypting unit 108. In the 
present example, the encrypted data block that was 
recorded 30 to 20 minutes earlier is decrypted using 
the decrypted unique key. 

The reproducing unit 110 reproduces the data 30 
block decrypted by the data decrypting unit 109. 

(13) During the time shifting, the nullification judging 
unit 111 judges, for each pair of encrypted data 
block and encrypted decryption key recorded on the 
recording medium, whether the recording time limit 35 
of the pair is reached or whether the data block has 
been reproduced by the reproducing unit 110. In the 
present example, the recording time limit is 90 min- 
utes, so that the nullification judging unit 111 judges, 

for each pair of encrypted data block corresponding 40 
to the broadcast time period of 1 0 minutes and en- 
crypted unique key which are recorded on the HDD 
905, whether 90 minutes have passed since the re- 
cording or whether the data block has been repro- 
duced (S 13). 45 

(14) When the pair is judged as needing to be nul- 
lified, the sequential nullifying unit 113 writes arbi- 
trary data to a recording area of the encrypted de- 
cryption key to nullify the pair. Here, if the process- 
ing capacity judging unit 112 judges that there is an so 
enough processing capacity, the sequential nullify- 
ing unit 113 further writes arbitrary data to a record- 
ing area of the encrypted data block (S1 4). 

(1 5) During the time shifting, the user interface unit 

101 waits for the user's indication to stop (S15). 55 

(16) Upon receiving the stop indication (S15:Yes), 
the operations of the receiving unit 102, descram- 
bling unit 103, key generating unit 104, data en- 



crypting unit 1 05, key encrypting unit 1 06, recording 
unit 107, key decrypting unit 108, data decrypting 
unit 109, and reproducing unit 110 are stopped to 
end the time shifting. Also, the total nullifying unit 
114 destroys all remaining data which has not been 
destroyed by the sequential nullifying unit 113, be- 
fore returning to the stopped state (S16). 

(1 7) During the time shifting, the user interface unit 
101 waits for the user's indication to pause (S17). 

(18) Upon receiving the pause indication (S17:Yes), 
the operations of the key decrypting unit 1 08, data 
decrypting unit 109, and reproducing unit 110 are _ 
stopped, while the recording continues (S18). 

(Second Operation Example) 

[0179] In the first operation example, the recording is 
not performed during the sequential reproduction. In- 
stead, upon receiving the user's indication to pause, the 
sequential reproduction is stopped and the recording is 
commenced. In the second operation example, on the 
other hand, the recording is performed during the se- 
quential reproduction, so as to make it possible to per- 
form time shifting even if the user does not indicate to 
pause. Moreover, an automatic pause clear function is 
added in the second operation example. This function 
automatically clears the pause when the pause time 
reaches an upper limit, and proceeds to the time shifting. 
[0180] FIG. 4 shows another example operation of the 
reception/reproduction/nullification device 100 of the 
first embodiment 

[0181] Here, it is assumed that digital content re- 
ceived by the receiving unit 102 Is accompanied with 
information showing a recording time limit and a repro- 
duction time limit. 

[0182] The recording time limit is a time period which 
begins when a pair is recorded and after which the re- 
tention of the pair on the recording medium is prohibited. 
The reproduction time limit is a time period which begins 
when a pair is first reproduced and after which the re- 
tention of the pair on the recording medium is prohibited. 
A pair whose recording time limit or reproduction time 
limit is reached is judged as needing to be nullified. 
[0183] Sequential reproduction/recording, recording, 
time shifting, nullification, and automatic pause clearing 
of the present invention are explained by referring to 
FIG. 4. Note here that steps which are the same as those 
in the first operation example are given the same step 
numbers. 

(1) In the stopped state, the user interface unit 101 
waits forthe user's indication to view some program 
(S1). 

(2) Upon receiving the view indication (S1 :Yes), the 
sequential reproduction/recording starts (S102). 

The receiving unit 102 starts receiving trans- 
mission data of the program which the user wants 
to view. In the present example, scrambled digital 
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content with copy control information "Copy Never" 
is received. 

The descrambling unit 1 03 starts descrambling 
the scrambled digital content received by the re- 
ceiving unit 1 02. 5 

The reproducing unit 1 1 0 starts reproducing the 
digital content descrambled by the descrambling 
unit 103. 

The key generating unit 104 randomly gener- 
ates an encryption key and a decryption key corre- 10 
sponding to the encryption key using a random 
number or the like, for each data block correspond- 
ing to the predetermined broadcast time period 
which is descrambled by the descrambling unit 103. 
In the present example, a unique key is randomly 15 
generated for each data block corresponding to the 
broadcast time period of 1 0 minutes . 

The data encrypting unit 105 encrypts the de- 
scrambled data block using the encryption key gen- 
erated by the key generating unit 104, so that the 20 
encrypted data block can be decrypted using the 
corresponding decryption key. In the present exam- 
ple, the data block corresponding to the broadcast 
time period of 10 minutes is encrypted using the cor- 
responding unique key. 25 

The key encrypting unit 106 encrypts the de- 
cryption key corresponding to the encryption key 
used by the data encrypting unit 105, using the de- 
vice ID. In the present example, the unique key is 
encrypted using the device ID. 30 

The recording unit 107 records the data block 
encrypted by the data encrypting unit 105 and the 
decryption key encrypted by the key encrypting unit 
1 06,,to the recording medium. In the present exam- 
ple, the pair of encrypted data block corresponding 35 
to the broadcast time period of 1 0 minutes and en- 
crypted unique key is recorded to the HDD 905. 

Here, the pair is accompanied with the record- 
ing time limit and the reproduction time limit togeth- 
er with time limit information. When the data block 40 
is first reproduced, the time at which the data block 
is first reproduced is added to the time limit infor- 
mation. 

(3) During the sequential reproduction/recording, 
the nullification judging unit 111 refers to time limit 45 
information to judge, for each pair of encrypted data 
block and encrypted decryption key recorded on the 
recording medium, whether the recording time limit 
of the pair is reached. Also, the nullification judging 
unit 111 judges, for each pair of encrypted data so 
block and encrypted decryption key which has been 
reproduced, whether the reproduction time limit of 
the pair is reached. In the present example, the re- 
cording time limit is set at 90 minutes after the re- 
cording, and the reproduction time limit is set at 60 55 
minutes after the first reproduction. This being so, 
when 90 minutes have passed since a pair of en- 
crypted data block corresponding to the broadcast 



time period of 1 0 minutes and encrypted unique key 
was recorded, the recording time limit of the pair is 
judged as being reached. Also, when 60 minutes 
have passed since the pair was first reproduced, the 
reproduction time limit of the pair is judged as being 
reached (S103). 

(4) When there is any pair of encrypted data block 
and encrypted decryption key whose recording time 
limit or reproduction time limit is reached, the se- 
quential nullifying unit 1 1 3 writes arbitrary data to a 
recording area of the encrypted decryption key to 
nullify the pair. Here, if the processing capacity judg- 
ing unit 112 judges that there is an enough process- 
ing capacity, the sequential nullifying unit 113 fur- 
ther writes arbitrary data to a recording area of the 
encrypted data block (S104). 

(5) During the sequential reproduction/recording, 
the user interface unit 101 waits for the user's indi- 
cation to stop (S105). 

(6) Upon receiving the stop indication (S105:Yes), 
the operations of the receiving unit 102, descram- 
bling unit 1 03, reproducing unit 110, key generating 
unit 1 04, data encrypting unit 1 05, key encrypting 
unit 1 06, and recording unit 1 07 are stopped to end 
the sequential reproduction/recording. Also, the to- 
tal nullifying unit 114 destroys all remaining data 
which has not been destroyed by the sequential nul- 
lifying unit 113, before returning to the stopped state 
(S106). 

(7) During the sequential reproduction/recording, 
the user interface unit 101 waits for the user's indi- 
cation to perform time shifting (S107). 

(8) During the sequential reproduction/recording, 
the user interface unit 101 waits for the user's indi- 
cation to pause (S108). 

(9) Upon receiving the pause indication (S1 08: Yes), 
the reproduction is stopped while the recording con- 
tinues (S109). 

The reproducing unit 110 stops the sequential 
reproduction of the digital content. 

(10) During the recording, the nullification judging 
unit 1 1 1 refers to time limit information to judge, for 
each pair of encrypted data block and encrypted de- 
cryption key recorded on the recording medium, 
whether the recording time limit of the pair is 
reached. Also, the nullification judging unit 111 judg- 
es, for each pair of encrypted data block and en- 
crypted decryption key which has been reproduced, 
whether the reproduction time limit of the pair is 
reached (S110). 

(11 ) When there is any pair of encrypted data block 
and encrypted decryption key whose recording time 
limit or reproduction time limit is reached, the se- 
quential nullifying unit 113 writes arbitrary data to a 
recording area of the encrypted decryption key to 
nullify the pair. Here, if the processing capacity judg- 
ing unit 112 judges that there is an enough process- 
ing capacity, the sequential nullifying unit 113 fur- 
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ther writes arbitrary data to a recording area of the 
encrypted data block (S111). 

(12) During the recording, the user interface unit 
101 waits for the user's indication to stop (S9). 

(13) Upon receiving the stop indication (S9:Yes), 
the operations of the receiving unit 102, descram- 
bling unit 103, key generating unit 104, data en- 
crypting unit 105, key encrypting unit 106, and re- 
cording unit 107 are stopped to end the recording. 
Also, the total nullifying unit 1 1 4 destroys all remain- 
ing data which has not been destroyed by the se- 
quential nullifying unit 113, before returning to the 
stopped state (S10). 

(14) During the recording, the user interface unit 
101 waits for the user's indication to perform time 
shifting (S11) . 

(15) During the recording, the sequential nullifying 
unit 113 judges whether the shift time reaches an 
upper limit. If the shift time reaches the upper limit, 
the sequential nullifying unit 113 sets the shift time 
as the upper limit and automatically clears the 
pause, so that the time shifting is commenced 

(5115) . In the present example, the upper limit is 
set at 90 minutes which are the same as the record- 
ing time limit. In this way, even if the recording time 
limit of data which has never been reproduced is 
reached, that data will not be nullified. 

(16) When the automatic pause clearing occurs 
(S115:Yes) or when the time shift indication is re- 
ceived (S1 07: Yes, S11 :Yes), the time shifting starts 

(5116) . 

The key decrypting unit 1 08 reads an encrypted 
decryption key paired with each shift-time-old data 
block from the recording medium, and decrypts the 
encrypted decryption key using the device ID. in the 
present example, the shift time is 30 minutes, so 
that an encrypted unique key paired with each data 
block which was recorded 30 to 20 minutes earlier 
is decrypted. Here, if the shift time exceeds the re- 
cording time limit, time shifting cannot be per- 
formed, as the shift-time-old data block has already 
been nullified by the time the time shifting starts. In 
this case, the shift time is set as the recording time 
limit to continue the operation. 

The data decrypting unit 109 decrypts the en- 
crypted data block using the decryption key de- 
crypted by the key decrypting unit 108. In the 
present example, the encrypted data block of 30 to 
20 minutes earlier is decrypted using the decrypted 
unique key. 

The reproducing unit 110 reproduces the data 
block decrypted by the data decrypting unit 1 09. 

(1 7) During the time shifting, the nullification judging 
unit 1 1 1 refers to time limit information to judge, for 
each pair of encrypted data block and encrypted de- 
cryption key recorded on the recording medium, 
whether the recording time limit of the pair is 
reached. Also, the nullification judging unit 11 1 judg- 



es, for each pair of encrypted data block and en- 
crypted decryption key which has been reproduced, 
whether the reproduction time limit of the pair is 
reached (S117). 

5 (1 8) When there is any pair of encrypted data block 
and encrypted decryption key whose recording time 
limit or reproduction time limit is reached, the se- 
quential nullifying unit 113 writes arbitrary data to a 
recording area of the encrypted decryption key to 

10 nullify the pair. Here, if the processing capacity judg- 
ing unit 11 2 judges that there is an enough process- 
ing capacity, the sequential nullifying unit 113 fur- 
ther writes arbitrary data to a recording area of the 
encrypted data block (S118). 

15 (1 9) During the time shifting, the user interface unit 
101 waits for the user's indication to stop (S15) . 

(20) Upon receiving the stop indication (S15:Yes), 
the operations of the receiving unit 102, descram- 
bling unit 103, key generating unit 104, data en- 

20 crypting unit 1 05, key encrypting unit 1 06, recording 
unit 107, key decrypting unit 108, data decrypting 
unit 109, and reproducing unit 110 are stopped to 
end the time shifting. Also, the total nullifying unit 
114 destroys all remaining data which has not been 

25 destroyed by the sequential nullifying unit 113, be- 
fore returning to the stopped state (S16). 

(21 ) During the time shifting, the user interface unit 
101 waits for the user's indication to pause (S17). 

(22) Upon receiving the pause indication (S1 7:Yes), 
30 the operations of the key decrypting unit 108, data 

decrypting unit 109, and reproducing unit 110 are 
stopped, while the recording continues (S18). 

[0184] According to the first embodiment of the 
35 present invention, copy-prohibited digital content can be 
recorded to enable time shifting, but the recorded digital 
content is promptly nullified to protect its copyright. This 
allows user-friendliness to be improved without depart- 
ing from the principle of copy prohibition. 

40 

Second Embodiment 
(Overview) 

45 [0185] The second embodiment of the present inven- 
tion is the following device. When digital content which 
is copy-prohibited ("Copy Never") is received, the de- 
vice allows the digital content to be recorded, but nulli- 
fies the recorded digital content once a predetermined 

so time period has passed. Here, by writing new data 
blocks over old data blocks which need be nullified, the 
old data blocks which have been stored for more than 
the predetermined time period can be nullified without 
affecting the processing capacity of the device. As a re- 

55 suit, time shifting can be performed only within the pre- 
determined time period from the reception. 
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(Construction) 

[01 86] A reception/reproduction/nuiiif ication device of 
the second embodiment has the same hardware con- 
struction as that of the first embodiment. 
[0187] FIG. 5 is a functional block diagram of the re- 
ception/reproduction/nullification device of the second 
embodiment. 

[0188] The reception/reproduction/nullification de- 
vice 200 shown in the drawing includes the user inter- 
face unit 101, the receiving unit 102, the descrambling 
unit 103, the key generating unit 104, the data encrypt- 
ing unit 105, the key encrypting unit 106, a recording 
unit 201 , the key decrypting unit 1 08, the data decrypting 
unit 1 09, the reproducing unit 1 1 0, a nullification judging 
unit 202, the processing capacity judging unit 112, a se- 
quential nullifying unit 203, and a total nullifying unit 204. 
In actuality, the function of the receiving unit 102 corre- 
sponds to the function of the reception device 902 
shown in FIG. 1 . The function of the descrambling unit 
1 03 corresponds to the function of the transport stream 
decoder 801 in FIG. 1. The functions of the key gener- 
ating unit 104, data encrypting unit 105, key encrypting 
unit 106, recording unit 201, key decrypting unit 108, 
and data decrypting unit 1 09 correspond to the function 
of the encryption engine 803 in FIG. 1 . The function of 
the reproducing unit 110 corresponds to the function of 
the AV decoder 802 in FIG. 1 . The functions of the nul- 
lification judging unit 202, processing capacity judging 
unit 112, sequential nullifying unit 203, and total nullify- 
ing unit 204 correspond to the function of the microcom- 
puter 804 in FIG. 1 . 

[01 89] Construction elements which are the same as 
those in the first embodiment are given the same refer- 
ence numerals and their explanation has been omitted. 
[0190] The recording unit 201 sequentially records 
pairs of encrypted data blocks and encrypted decryption 
keys of digital content, onto the predetermined record- 
ing medium. Here, if the digital content is copy-prohib- 
ited, the recording unit 201 reserves a plurality of record- 
ing areas that are each capable of storing data of the 
predetermined broadcast time period, on the recording 
medium. The recording unit 201 then sequentially 
records the pairs to the reserved recording areas, in the 
present example, the recording unit 201 reserves nine 
recording areas that can each store data corresponding 
to the broadcast time period of 1 0 minutes, on the HDD 
905. The recording unit 201 then records pairs of en- 
crypted data blocks and encrypted unique keys, se- 
quentially to the reserved recording areas. Here, if the 
recording areas already store pairs of encrypted data 
blocks and encrypted unique keys, the recording unit 
201 writes the new pairs over the old pairs. If the digital 
content does not require copyright protection, on the 
other hand, the recording unit 201 can record the digital 
content in an unencrypted form. 

[0191] The nullification judging unit 202 operates as 
follows. When digital content is received and recorded 



despite its copy-prohibition status, the nullification judg- 
ing unit 202 judges, for each pair of encrypted data block 
and encrypted decryption key recorded on the recording 
medium, whether the pair should be nullified, based on 

5 a specific condition. In the present example, the nullifi- 
cation judging unit 202 judges, for each pair of encrypted 
data block corresponding to the broadcast time period 
of 1 0 minutes and encrypted unique key which are re- 
corded on the HDD 905, whether the pair should be nul- 

10 lified. 

[01 92] The specific condition used here is whether the 
data block has been reproduced by the reproducing unit 
1 1 0 or whether a predetermined time period has passed 
since the data block was received by the receiving unit 
15 102 or recorded by the recording unit 201 . In this em- 
bodiment, sequence information showing a sequence in 
which pairs of encrypted data blocks and encrypted de- 
cryption keys were recorded is stored on the recording 
medium. This being so, the nullification judging unit 202 
makes the judgement such that the pairs are nullified in 
the recording sequence, and the recording unit 201 
writes the new pairs to the recording areas storing the 
old pairs which are judged as needing to be nullified. In 
the present example, nine pairs of encrypted data 
blocks corresponding to the broadcast time period of 1 0 
minutes and encrypted unique keys which are recorded 
in the nine recording areas on the HDD 905 are each 
nullified 90 minutes after it was written, as a result of 
overwriting with a new pair. 

[0193] The sequential nullifying unit 203 operates as 
follows. Wheneverthe nullif ication judging unit 202 judg- 
es that a predetermined number of encrypted data 
blocks and their corresponding encrypted decryption 
keys should be nullified or that one or more encrypted 
data blocks whose total amount of data reaches a pre- 
determined amount and their corresponding encrypted 
decryption keys should be nullified, the sequential nul- 
lifying unit 203 nullifies the judged pairs of encrypted da- 
ta blocks and encrypted decryption keys. Here, if there 
are new pairs of encrypted data blocks and encrypted 
decryption keys which need to be recorded, the old pairs 
can be nullified by overwriting with the new pairs, if there 
is no new pair, the sequential nullifying unit 203 destroys 
each old pair by, for example, overwriting with arbitrary 
data. 

[0194] Here, if the digital content has a fixed bit rate, 
i.e., the amount of data per unit time is constant, an old 
pair can completely be nullified by the overwriting with 
a new pair. However, if the digital content has a variable 
bit rate as in MPEG, the old pair may not be able to be 
completely nullified by the overwriting with the new pair. 
[0195] in such a case, the sequential nullifying unit 
203 may destroy the old pair by writing meaningless da- 
ta over the remaining parts of the old pair which have 
not been overwritten with the new pair. As an alternative, 
the sequential nullifying unit 203 may destroy the re- 
maining parts of the old pair when the processing ca- 
pacity judging unit 112 judges that there is an enough 
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processing capacity, and leave the remaining parts as 
they are when the processing capacity judging unit 112 
judges that there is not an enough processing capacity. 
[0196] The total nullifying unit 204 destroys all remain- 
ing parts of the pairs of encrypted data blocks and en- 
crypted decryption keys which have not been destroyed 
by the sequential nullifying unit 203, when there is an 
enough processing capacity. Also, the total nullifying 
unit 204 destroys all remaining parts when the user in- 
dicates to stop time shifting. 

(Operation) 

[0197] FIG. 6 shows an example operation of the re- 
ception/reproduction/nullification device 200 of the sec- 
ond embodiment. 

[0198] Sequential reproduction, recording, time shift- 
ing, and nullification of the present invention are ex- 
plained by referringto FIG. 6. Note here that steps which 
are the same as those in the first embodiment are given 
the same step numbers and their explanation has been 
omitted. 

[0199] (1 )-(5) Same as {1 )-(5) of thefirst operation ex- 
ample in the first embodiment (S1 -S5). 
[0200] (6) Upon receiving the pause indication (S5: 
Yes), the recording starts (S21). 
[0201] The key generating unit 104 randomly gener- 
ates an encryption key and a decryption key corre- 
sponding to the encryption key using a random number 
of the like, for each data block corresponding to the pre- 
determined broadcasttime period which is descrambled 
by the descrambling unit 1 03 In the present example, 
a unique key is randomly generated for each data block 
corresponding to the broadcast time period of 10 min- 
utes. 

[0202] The data encrypting unit 1 05 encrypts the de- 
scrambled data block using the encryption key generat- 
ed by the key generating unit 104, so that the encrypted 
data block can be decrypted by the corresponding de- 
cryption key. In the present example, the data block cor- 
responding to the broadcasttime period of 10 minutes 
is encrypted using the corresponding unique key. 
[0203] The key encrypting unit 106 encrypts the de- 
cryption key corresponding to the encryption key used 
by the data encrypting unit 105 : using the device ID. In 
the present example, the unique key is encrypted using 
the device ID. 

[0204] The recording unit 201 reserves a plurality of 
recording areas which can each store data of the pre- 
determined broadcast time period, on the recording me- 
dium. The recording unit 201 then sequentially records 
pairs of encrypted data blocks and encrypted decryption 
keys to the recording areas. In the present example, 
nine recording areas each capable of storing data cor- 
responding to the broadcast time period of 10 minutes 
are reserved on the HDD 905, and pairs of encrypted 
data blocks corresponding to the broadcast time period 
of 10 minutes and encrypted unique keys are sequen- 



tially recorded to the nine recording areas. Here, if the 
recording areas already store pairs of encrypted data 
blocks and encrypted unique keys, the new pairs are 
written over the old pairs. 

5 [0205] If any old pair was not completely destroyed by 
overwriting with a new pair, the sequential nullifying unit 
203 destroys the remaining parts of the old pair by, for 
example, overwriting with meaningless data. 
[0206] The reproducing unit 1 1 0 stops the sequential 

10 reproduction of the digital content. 

[0207] (7) Same as (9) of the first operation example 
in the first embodiment (S9). 

[0208] (8) Upon receiving the stop indication (S9: 
Yes), the operations of the receiving unit 1 02, descram- 

15 bling unit 1 03, key generating unit 1 04, data encrypting 
unit 1 05, key encrypting unit 1 06, and recording unit 201 
are stopped to end the recording. Also, the total nullify- 
ing unit 204 destroys all remaining data which has not 
been destroyed by the sequential nullifying unit 203, be- 

20 fore returning to the stopped state (S22). 

[0209] (9)-(10)Sameas (11)-(12) of the first operation 
example in the first embodiment (S11-S12). 
[0210] (11) Same as (15) of thefirst operation exam- 
ple in thefirst embodiment (S15). 

25 [0211] (12) Upon receiving the stop indication (S15: 
Yes), the operations of the receiving unit 1 02, descram- 
bling unit 103, key generating unit 104, data encrypting 
unit 105, key encrypting unit 106, recording unit 201 , 
key decrypting unit 108, data decrypting unit 109, and 

30 reproducing unit 110 are stopped to end the time shift- 
ing. Also, the total nullifying unit 204 destroys all remain- 
ing data which has not been destroyed by the sequential 
nullifying unit 203, before returning to the stopped state 
(S23). 

35 [0212] (13)-(14) Same as (17)-(18) of the first opera- 
tion example in the first embodiment (S17-S18). 
[021 3] According to the second embodiment of the in- 
vention, copy-prohibited digital content can be recorded 
to enable time shifting, but the recorded digital content 

40 js nullified by overwriting with new data once a prede- 
termined time period has passed. This enables user- 
friendliness to be improved without departing from the 
principle of copy prohibition. Furthermore, the sequen- 
tial nullification is executed without increasing the load 

45 on the device. 

Third Embodiment 
(Overview) 

50 

[021 4] The third embodiment of the present invention 
is the following device. When digital content whose cop- 
ying is permitted only once ("Copy one Generation") is 
received and recorded on a recording medium, the dig- 
55 ital content can be moved to another recording medium , 
but the digital content on the original recording medium 
is nullified little by little upon being copied, so that the 
digital content will not remain on the original recording 
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medium. 
(Construction) 

[021 5] A reception/reproduction/nullification device of 
the third embodiment has the same hardware construc- 
tion as that of the first embodiment, except for the fol- 
lowing new functions of the microcomputer 804. 
[0216] When the user receives digital content only 
one generation copy of which is permitted and records 
it to the HDD 905 in an encrypted form, the microcom- 
puter 804 sequentially copies data blocks of the digital 
content which correspond to the predetermined broad- 
cast time period and at the same time nullifies the copied 
data blocks on the HDD 905 so that they cannot be re- 
produced. 

[0217] FIG. 7 is a functional block diagram of the re- 
ception/reproduction/nullification device of the third em- 
bodiment. 

[0218] This reception/reproduction/nullification de- 
vice 300 includes the user interface unit 101, the receiv- 
ing unit 102, the descrambling unit 103, the key gener- 
ating unit 1 04, the data encrypting unit 1 05, the key en- 
crypting unit 106, the recording unit 107, the key de- 
crypting unit 108, the data decrypting unit 109, the re- 
producing unit 110, a moving unit 301, a nullification 
judging unit 302, the processing capacity judging unit 
112, the sequential nullifying unit 113, and the total nul- 
lifying unit 114. In actuality, the function of the receiving 
unit 1 02 corresponds to the function of the reception de- 
vice 902 shown in FIG. 1 . The function of the descram- 
bling unit 103 corresponds to the function of the trans- 
port stream decoder 801 in FIG. 1 . The functions of the 
key generating unit 104, data encrypting unit 105, key 
encrypting unit 106, recording unit 107, key decrypting 
unit 1 08, and data decrypting unit 1 09 correspond to the 
function of the encrypting engine 803 in FIG. 1. The 
function of the reproducing unit 110 corresponds to the 
function of the AV decoder 802 in FIG. 1 . The functions 
of the moving unit 301 , nullification judging unit 302, 
processing capacity judging unit 112, sequential nullify- 
ing unit 113, and total nullifying unit 114 correspond to 
the function of the microcomputer 804 in FIG. 1 . 
[0219] Construction elements which are the same as 
those in the first embodiment are given the same refer- 
ence numerals and their explanation has been omitted. 
[0220] The moving unit 301 moves pairs of encrypted 
data blocks and encrypted decryption keys which have 
been recorded on the recording medium, sequentially 
to another recording medium. The movement referred 
to here is an operation of (1) copying data from one re- 
cording medium to another recording medium and (2) 
rewriting data management information of the data on 
the original recording medium to show that the data has 
been deleted, without deleting the data itself on the orig- 
inal recording medium. In the present example, pairs of 
encrypted data blocks corresponding to the broadcast 
time period of 10 minutes and encrypted unique keys 



which are recorded on the HDD 905 are moved one by 
one to another recording medium. 
[0221] The nullification judging unit 302 operates as 
follows. When digital content is recorded to one record- 
is ing medium and then further recorded to another record- 
ing medium despite that only one generation copy of the 
digital content is permitted, the nullification judging unit 
302 judges whether the digital content should be nulli- 
fied, based on a specific condition. In the present exam- 
ple, the nullification judging unit 302 judges, for each 
pair of encrypted data block corresponding to the broad- 
cast time period of 10 minutes and encrypted unique 
key, whether the pair should be nullified. 
[0222] The specific condition here is whether the pair 
15 has been moved by the moving unit 301 . 

(Operation) 

[0223] FIG. 8 shows an example operation of the re- 
20 ceptron/reproduction/nullif ication device 300 of the third 
embodiment. 

[0224] Movement and nullification of the present in- 
vention are explained by referring to FIG. 8. 
[0225] Suppose scrambled digital content whose 
25 copy control information is "Copy one Generation" is re- 
ceived, and a plurality of pairs of encrypted data blocks 
corresponding to the predetermined broadcast time pe- 
riod and encrypted unique keys are recorded on the 
HDD 905 with copy control information "Copy No more". 

30 

(1) in the stopped state, the user interface unit 101 
waits for the user's indication to move digital content 
(S31). 

(2) Upon receiving the move indication (S31 :Yes), 
35 the nullification judging unit 302 judges whether the 

digital content is copy-prohibited, by referring to its 
copy control information (S32). 

(3) If the digital content is not copy-prohibited (S32: 
No), the moving unit 301 moves all pairs of encrypt- 

40 ed data blocks and encrypted decryption keys of the 
digital content to another recording medium (S33). 

(4) If the digital content is copy-prohibited (e.g. if the 
copy control information is "Copy No more") (S32: 
Yes), the moving unit 301 moves one pair of en- 

45 crypted data block and encrypted decryption key to 
another recording medium. In the present example, 
one pair of encrypted data block corresponding to 
the broadcast time period of 10 minutes and en- 
crypted unique key which are recorded on the HDD 

50 905 Is moved to another recording medium. 

(5) The nullification judging unit 302 judges whether 
there is any pair which has been moved but not 
been nullified (S35). 

(6) If there is any pair which has been moved but 
55 not been nullified (S35:Yes), the sequential nullify- 
ing unit 113 nullifies the pair (S36). 

(7) It is judged whether ail pairs of encrypted data 
blocks and encrypted decryption keys have been 
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moved (S37). 

(8) If all pairs have been moved (S37:Yes), the total 
nullifying unit 1 1 4 destroys all remaining data which 
has not been destroyed by the sequential nullifying 
unit 113 (S38). 

[0226] According to the third embodiment of the in- 
vention, copy-prohibited digital content can be moved 
to another recording medium but the digital content re- 
corded on the original recording medium is then prompt- 
ly nullified. This enables user-friendliness to improve 
without departing from the principle of copy prohibition. 
[0227] The first to third embodiments describe the 
case where a different encryption key is generated for 
each data block corresponding to the predetermined 
broadcast time period. However, a plurality of data 
blocks may be encrypted using the same encryption 
key. Also, the predetermined broadcast time period is 
not limited to the above example but may be in any 
length. Furthermore, digital content which is recorded 
on the same recording medium may be encrypted using 
a single encryption key unique to the recording medium. 
[0228] The first to third embodiments describe the 
case where only decryption keys are sequentially de- 
stroyed when there is not an enough processing capac- 
ity. However, when the same key is used for encrypting 
a plurality of data blocks as mentioned above, if a de- 
cryption key of one data block is destroyed, the other 
data blocks that use the same decryption key cannot be 
decrypted. In this case, the decryption key is not de- 
stroyed and instead the data blocks that use the decryp- 
tion key are partly or completely destroyed. The decryp- 
tion key can be destroyed after the data blocks that use 
the same decryption key are nullified. 
[0229] Also, since data is usually recorded and man- 
aged in the form of files, each pair of encrypted data 
block and encrypted decryption key may be recorded as 
a file or a plurality of pairs may be recorded as a file. 
When each pair is recorded as an individual file, nullifi- 
cation can be performed in units of files. However, when 
a plurality of pairs are recorded as a single file, nullifica- 
tion needs to be performed for part of the file. In such a 
case, access to the nullified part should be restricted so 
as to keep the nullified part from being accessed by mis- 
take. Access to part of a file can be restricted by, for 
example, using a seek restriction function of a file point- 
er mounted on a typical operating system. 
[0230] In the second embodiment, the plurality of re- 
cording areas reserved by the recording unit 201 need 
not be consecutive. As one example, AV data of 4Mbps 
is 300MB per ten minutes, it is not efficient to reserve 
consecutive recording areas that can store such an 
amount of data on the HDD. In this case, each recording 
area is made up of a plurality of small consecutive areas. 
The relationship between each recording area and its 
small consecutive areas is independently managed by 
a file system, which provides each recording area to 
higher applications as a consecutive recording area to 



realize access using a file pointer. 
[0231] Programs that can execute the operations of 
the first to third embodiments on computer may be re- 
corded on computer-readable recording media and dis- 
5 tributed for transaction. Such programs may also be dis- 
tributed via network. 

[0232] Examples of the computer-readable recording 
media include a removable recording medium such as 
a floppy disk, a CD, an MO, a DVD, or a memory card, 
10 and a fixed recording medium such as a hard disk and 
a semiconductor memory. 

[0233] Although the present invention has been fully 
described by way of examples with reference to the ac- 
companying drawings, it is to be noted that various 
15 changes and modifications will be apparent to those 
skilled in the art. 

[0234] Therefore, unless such changes and modifica- 
tions depart from the scope of the present invention, 
they should be construed as being included therein. 

20 

Claims 

1 . A data nullification device for nullifying target data 
25 recorded on a recording medium, the target data 
being made up of a plurality of data blocks, the data 
nullification device comprising: 

a judging unit operable to judge, for each data 
30 block recorded on the recording medium, 

whether the data block needs to be nullified; 
and 

a nullifying unit operable to nullify, when a pre- 
determined number of data blocks are judged 
35 as needing to be nullified or when one or more 

data blocks whose total amount of data reaches 
a predetermined amount are judged as needing 
to be nullified, the judged data blocks. 

40 2. The data nullification device of Claim 1 , 

wherein the recording medium stores se- 
quence information that shows a sequence in which 
the plurality of data blocks were recorded onto the 
recording medium, and 

45 the judging unit judges, in succession, the plu- 

rality of data blocks in the sequence shown by the 
sequence information, as needing to be nullified. 

3. The data nullification device of Claim 2, 
50 wherein the target data is data which is con- 

tinuously transmitted from an external device and 
recorded on the recording medium, 

the data nullification device further comprises: 

55 a receiving unit operable to receive data from 

the external device, and 
having set the received data as a new data 
block, the nullifying unit writes the new data 
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block to a recording area on the recording me- 
dium that stores a data block which is judged 
as needing to be nullified, to nullify the recorded 
data block and at the same time record the new 
data block. 

4. The data nullification device of Claim 3, 

wherein each data block has a length corre- 
sponding to a fixed transmission time period, and 

a specified number of recording areas which 
are each used as a recording area of a data block 
are reserved on the recording medium. 

5. The data nullification device of Claim 4, 

wherein if the length corresponding to the 
fixed transmission time period is variable and if part 
of the recorded data block remains even after the 
new data block is written, the nullifying unit further 
writes arbitrary data over the part of the recorded 
data block. 

6. The data nullification device of Claim 4, 

wherein if there is not a new data block which 
is to be recorded, the nullifying unit writes arbitrary 
data to the recording area. 

7. The data nullification device of Claim 2, further com- 
prising: 

a utilizing unit operable to utilize the target data 
recorded on the recording medium, in units of 
data blocks, 

wherein the judging unit further judges that 
each data block which was utilized by the utilizing 
unit needs to be nullified. 

8. The data nullification device of Claim 7, 

wherein the target data is content data which 
is transmitted from an external device and recorded 
on the recording medium, 

the content data is accompanied with copy 
control information showing whether copying of the 
content data is permitted or prohibited, 

the utilizing unit reproduces the content data 
recorded on the recording medium, in units of data 
blocks, and 

only if the copy control information accompa- 
nying the content data shows that the copying of the 
content data is prohibited, the judging unit judges 
that each data block which was reproduced by the 
utilizing unit needs to be nullified. 

9. The data nullification device of Claim 1 , 

wherein the recording medium stores time 
limit information showing a recording time limit of 
each data block recorded on the recording medium, 
the recording time limit being a time limit after which 



retention of the data block on the recording medium 
is prohibited, 

the judging unit judges that each data block 
whose recording time limit is reached needs to be 
5 nullified, based on the time limit information, and 

whenever any data block is judged as needing 
to be nullified because a recording time limit of the 
data block is reached, the nullifying unit nullifies the 
data block irrespective of whether the predeter- 
10 mined number of data blocks are judged as needing 
to be nullified or whether one or more data blocks 
whose total amount of data reaches the predeter- 
mined amount are judged as needing to be nullified. 

15 10. The data nullification device of Claim 9, further com- 
prising: 

a utilizing unit operable to utilize the target data 
recorded on the recording medium, in units of 
20 data blocks, 

wherein the judging unit further judges that 
each data block which was utilized by the utilizing 
unit needs to be nullified. 

25 

11. The data nullification device of Claim 10, 

wherein the target data is content data which 
is transmitted from an external device and recorded 
on the recording medium, 
30 the content data is accompanied with copy 

control information showing whether copying of the 
content data is permitted or prohibited, 

the utilizing unit reproduces the content data 
recorded on the recording medium, in units of data 
35 blocks, and 

only if the copy control information accompa- 
nying the content data shows that the copying of the 
content data is prohibited, the judging unit judges 
that each data block which was reproduced by the 
40 utilizing unit needs to be nullified. 

12. The data nullification device of Claim 1 , further com- 
prising: 

45 a utilizing unit operable to utilize the target data 

recorded on the recording medium, in units of 
data blocks, 

wherein the judging unit judges that each data 
50 block which was utilized by the utilizing unit needs 
to be nullified. 

13. The data nullification device of Claim 12, 

wherein the target data is content data which 
55 is transmitted from an external device and recorded 
on the recording medium, 

the content data is accompanied with copy 
control information showing whether copying of the 
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content data is permitted or prohibited, 

the utilizing unit reproduces the content data 
recorded on the recording medium, in units of data 
blocks, and 

only if the copy control information accompa- 
nying the content data shows that the copying of the 
content data is prohibited, the judging unit judges 
that each data block which was reproduced by the 
utilizing unit needs to be nullified. 

14. The data nullification device of Claim 12, 

wherein the target data is accompanied with 
copy control information showing whether copying 
of the target data is permitted or prohibited, 

the utilizing unit records the target data re- 
corded on the recording medium, to another record- 
ing medium, in units of data blocks, and 

only if the copy control information accompa- 
nying the target data shows that the copying of the 
target data is prohibited, the judging unit judges that 
each data block on the recording medium which 
was recorded by the utilizing unit needs to be nulli- 
fied. 

15. The data nullification device of Claim 1 , 

wherein the nullifying unit destroys all parts of 
a data block which is judged as needing to be nul- 
lified. 

16. The data nullification device of Claim t , 

wherein the nullifying unit destroys at least a 
part of a data block which is judged as needing to 
be nullified, the part of the data block being neces- 
sary to utilize remaining parts of the data block. 

17. The data nullification device of Claim 16, 

wherein the target data is MPEG data includ- 
ing I pictures, and 

the part of the data block necessary to utilize 
the remaining parts of the data block is an I picture. 

18. The data nullification device of Claim 16, 

wherein the target data is MPEG data includ- 
ing I pictures, and 

the part of the data block necessary to utilize 
the remaining parts of the data block is a first sector 
of an I picture. 

19. The data nullification device of Claim 16, 

wherein when the data nullification device 
does not have an enough processing capacity, the 
nullifying unit destroys only the part of the data block 
necessary to utilize the remaining parts of the data 
block. 

20. The data nullification device of Claim 1 9, 

wherein the nullifying unit destroys the re- 
maining parts of the data block within a range where 



a processing capacity of the data nullification device 
allows. 

21. The data nullification device of Claim 19, further 
5 comprising: 

a destroying unit operable to destroy remaining 
parts of data blocks which were not destroyed 
by the nullifying unit, when the data nullification 
to device has an enough processing capacity. 

22. The data nullification device of Claim 1 , 

wherein each data block recorded on the re- 
cording medium has been encrypted using an indi- 
15 vidual encryption key, 

a decryption key for decrypting the encrypted 
data block is stored on the recording medium, and 
the nullifying unit destroys at least a decryp- 
tion key corresponding to a data block which is 
20 judged as needing to be nullified. 

23. The data nullification device of Claim 22, further 
comprising: 

25 an acquiring unit operable to acquire the target 

data in an encoded form; 
a decoding unit operable to decode the encod- 
ed target data using a user key which has been 
provided to authorized users in advance, to ob- 
30 tain the target data; 

a key generating unit operable to generate an 
arbitrary encryption key and a decryption key 
corresponding to the encryption key, for each 
data block of the target data; 
35 a data encrypting unit operable to encrypt the 

data block using the encryption key so that the 
encrypted data block can be decrypted using 
the corresponding decryption key; 
a key encrypting unit operable to encrypt the 
decryption key using an identifier unique to the 
data nullification device; and 
a recording unit operable to record the encrypt- 
ed data block and the encrypted decryption key 
onto the recording medium. 

45 

24. The data nullification device of Claim 23, 

wherein at least the decoding unit the key 
generating unit, the data encrypting unit, and the 
key encrypting unit are contained in a single semi- 
50 conductor chip. 

25. A data nullification program for nullifying target data 
recorded on a recording medium, the target data 
being made up of a plurality of data blocks, the data 

55 nullification program having a computer execute the 
steps of: 

judging, for each data block recorded on the re- 
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cording medium, whether the data block needs 
to be nullified: and 

nullifying, when a predetermined number of da- 
ta blocks are judged as needing to be nullified 
or when one or more data blocks whose total 
amount of data reaches a predetermined 
amount are judged as needing to be nullified, 
the judged data blocks. 

26. The data nullification program of Claim 25, 

wherein the recording medium stores se- 
quence information that shows a sequence in which 
the plurality of data blocks were recorded onto the 
recording medium, and 

the judging step judges, in succession, the 
plurality of data blocks in the sequence shown by 
the sequence information, as needing to be nulli- 
fied. 

27. The data nullification program of Claim 26, 

wherein the target data is data which is con- 
tinuously transmitted from an external device and 
recorded on the recording medium, 

the data nullification program further having 
the computer execute the step of: 

receiving data from the external device, 

wherein having set the received data as a new 
data block, the nullifying step writes the new data 
block to a recording area on the recording medium 
that stores a data block which is judged as needing 
to be nullified, to nullify the recorded data block and 
at the same time record the new data block. 

28. The data nullification program of Claim 26, further 
having the computer execute the step of: 

utilizing the target data recorded on the record- 
ing medium, in units of data blocks, 

wherein the judging step further judges that 
each data block which was utilized in the utilizing 
step needs to be nullified. 

29. The data nullification program of Claim 25, 

wherein the recording medium stores time 
limit information showing a recording time limit of 
each data block recorded on the recording medium, 
the recording time limit being a time limit after which 
retention of the data block on the recording medium 
, is prohibited, 

the judging step judges that each data block 
whose recording time limit is reached needs to be 
nullified, based on the time limit information, and 

whenever any data block is judged as needing 
to be nullified because a recording time limit of the 
data block is reached, the nullifying step nullifies the 



data block irrespective of whether the predeter- 
mined number of data blocks are judged as needing 
to be nullified or whether one or more data blocks 
whose total amount of data reaches the predeter- 
5 mined amount are judged as needing to be nullified. 

30. The data nullification program of Claim 29, further 
having the computer execute the step of: 

10 utilizing the target data recorded on the record- 

ing medium, in units of data blocks, 

wherein the judging step further judges that 
each data block which was utilized in the utilizing 
15 step needs to be nullified. 

31 . The data nullification program of Claim 25, further 
having the computer execute the step of: 

20 utilizing the target data recorded on the record- 

ing medium, in units of data blocks, 

wherein the judging step judges that each da- 
ta block which was utilized in the utilizing step needs 
25 to be nullified. 

32. The data nullification program of Claim 25, 

wherein the nullifying step destroys ail parts 
of a data block which is judged as needing to be 
so nullified. 

33. The data nullification program of Claim 25, 

wherein the nullifying step destroys at least a 
part of a data block which is judged as needing to 
35 be nullified, the part of the data block being neces- 
sary to utilize remaining parts of the data block. 

34. The data nullification program of Claim 25, 

wherein each data block recorded on the re- 
40 cording medium has been encrypted using an indi- 
vidual encryption key, 

a decryption key for decrypting the encrypted 
data block is stored on the recording medium, and 
the nullifying step destroys at least a decryp- 
45 tion key corresponding to a data block which is 
judged as needing to be nullified. 

35. A data nullification method for nullifying target data 
recorded on a recording medium, the target data 

so being made up of a plurality of data blocks, the data 
nullification method comprising the steps of: 

judging, for each data block recorded on the re- 
cording medium, whether the data block needs 
55 to be nullified; and 

nullifying, when a predetermined number of da- 
ta blocks are judged as needing to be nullified 
or when one or more data blocks whose total 
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amount of data reaches a predetermined 
amount are judged as needing to be nullified, 
the judged data blocks. 

36. The data nullification method of Claim 35, 

wherein the recording medium stores se- 
quence information that shows a sequence in which 
the plurality of data blocks were recorded onto the 
recording medium, and 

the judging step judges, in succession, the 
plurality of data blocks in the sequence shown by 
the sequence information, as needing to be nulli- 
fied. 

37. The data nullification method of Claim 36, 

wherein the target data is data which is con- 
tinuously transmitted from an external device and 
recorded on the recording medium, 

the data nullification method further compris- 
ing the step of: 

receiving data from the external device, 

wherein having set the received data as a new 
data block, the nullifying step writes the new data 
block to a recording area on the recording medium 
that stores a data block which is judged as needing 
to be nullified, to nullify the recorded data block and 
at the same time record the new data block. 

38. The data nullification method of Claim 36, further 
comprising the step of : 

utilizing the target data recorded on the record- 
ing medium, in units of data blocks, 

wherein the judging step further judges that 
each data block which was utilized in the utilizing 
step needs to be nullified. 

39. The data nullification method of Claim 35, 

wherein the recording medium stores time 
limit information showing a recording time limit of 
each data block recorded on the recording medium, 
the recording time limit being a time limit after which 
retention of the data block on the recording medium 
is prohibited, 

the judging step judges that each data block 
whose recording time limit is reached needs to be 
nullified, based on the time limit information, and 

whenever any data block is judged as needing 
to be nullified because a recording time limit of the 
data block is reached, the nullifying step nullifies the 
data block irrespective of whether the predeter- 
mined number of data blocks are judged as needing 
to be nullified or whether one or more data blocks 
whose total amount of data reaches the predeter- 
mined amount are judged as needing to be nullified. 



40. The data nullification method of Claim 39, further 
comprising the step of: 

utilizing the target data recorded on the record- 
5 ing medium, in units of data blocks, 

wherein the judging step further judges that 
each data block which was utilized in the utilizing 
step needs to be nullified. 

10 

41. The data nullification method of Claim 35, further 
comprising the step of: 

utilizing the target data recorded on the record- 
's ing medium, in units of data blocks, 



wherein the judging step judges that each da- 
ta block which was utilized in the utilizing step needs 
to be nullified. 

20 

42. The data nullification method of Claim 35, 

wherein the nullifying step destroys all parts 
of a data block which is judged as needing to be 
nullified. 

25 

43. The data nullification method of Claim 35, 

wherein the nullifying step destroys at least a 
part of a data block which is judged as needing to 
be nullified, the part of the data block being neces- 
30 sary to utilize remaining parts of the data block. 

44. The data nullification method of Claim 35, 

wherein each data block recorded on the re- 
cording medium has been encrypted using an indi- 
35 vidual encryption key, 

a decryption key for decrypting the encrypted 
data block is stored on the recording medium, and 
the nullifying step destroys at least a decryp- 
tion key corresponding to a data block which is 
40 judged as needing to be nullified. 
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